Novel conspiracy attack immune generalized interactive authentication scheme for virtual enterprises with traceability

• Article •

Novel conspiracy attack immune generalized interactive authentication scheme for virtual enterprises with traceability

ZHANG Wen-fang, WANG Xiao-min, HE Da-ke

1.School of Information Science & Technology, Southwest Jiaotong University, Chengdu 610031, China;2.Key Laboratory of Information Security & National Computing Grid, Southwest Jiaotong University, Chengdu 610031, China

Online:2010-07-15 Published:2010-07-25

身份可追查的抗合谋攻击广义虚拟企业信任交互方案

张文芳，王小敏，何大可,

1.西南交通大学信息科学与技术学院,四川成都610031；2.西南交通大学信息安全与国家计算网格四川省重点实验室,四川成都610031

Abstract

Abstract: There were several preliminary interactive authentication schemes for Virtual Enterprise (VE), but none of them could resist conspiracy attacks or trace the members'identities which participated in a Virtual Certificate Authority （VCA） signature's generation. To solve these problems, a novel conspiracy attack immune generalized interactive authentication scheme for VE with traceability was proposed. In this new scheme, the conspiracy attack immune property was obtained by introducing signers'inherent secret keys and public keys'information into VCA signature, and the traceability was realized by constructing identity tracking database and y-value's revocation list. Furthermore, the new scheme could locate errors by partial signature's verification function. Analysis shows that the new scheme was more secure and was suitable for various VE's organization forms. It provided a feasible solution for VE's interactive authentication.

Key words: virtual enterprise, virtual certificate authority, threshold signature, conspiracy attack, traceability, generalized interactive authentication, security

摘要： 现有的虚拟企业信任交互方案，均不能抵抗盟主与盟员及盟员与盟员间的合谋攻击，也不具备盟员间出现信任纠纷时的身份追查功能。为此，提出了一个身份可追查的抗合谋攻击广义虚拟企业信任交互方案。新方案通过在证书签发过程中引入签名成员的固有公私钥信息实现抗合谋攻击，通过构建身份跟踪数据库和y值吊销列表实现责任追查，通过部分签名验证实现错误定位。分析表明，新方案不仅具备已有方案的安全特性，还具备抗合谋攻击和身份可追查功能，且能灵活适应虚拟企业的不同组织模式，为虚拟企业盟员间的信任交互提供了安全可行的解决方案。

关键词: 虚拟企业, 虚拟认证中心, 门限签名, 合谋攻击, 可追查性, 广义信任交互, 安全性

CLC Number:

TP393.08

ZHANG Wen-fang,, WANG Xiao-min, HE Da-ke,. Novel conspiracy attack immune generalized interactive authentication scheme for virtual enterprises with traceability[J]. .

张文芳,，王小敏，何大可,. 身份可追查的抗合谋攻击广义虚拟企业信任交互方案[J]. .

[1]	. Review on security,privacy,and performance issues of blockchain [J]. , 2021, 27(7): 2078-2094.
[2]	. Security and energy aware scheduling for service workflow in mobile edge computing [J]. , 2020, 26(7): 1831-1842.
[3]	. Data communication method based on microservice architecture to support reliable execution of business processes [J]. , 2019, 25(第4): 946-953.
[4]	. Hybrid indexing scheme supporting blockchain transaction tracing [J]. , 2019, 25(第4): 978-984.
[5]	. Summary and prospect of edge computing security [J]. , 2019, 25(12): 3043-3051.
[6]	. Trusted transaction method of manufacturing services based on blockchain [J]. , 2019, 25(12): 3247-3257.
[7]	. Hierarchical lightweight high-throughput blockchain for industrial Internet data security [J]. , 2019, 25(12): 3258-3266.
[8]	. Industrial applications,technologies,challenges and trends for industrial cloud [J]. , 2018, 24(第8): 1887-1901.
[9]	. Security architecture for cloud manufacturing platform [J]. , 2018, 24(第4): 851-861.
[10]	. Shipbuilding material TEU information model and traceable management system [J]. , 2017, 23(第9期): 1983-1991.
[11]	. Security and cost aware scheduling method for instance-intensive cloud workflows [J]. , 2017, 23(第5期): 955-962.
[12]	. Multi-objective cloud workflow scheduling considering information security factors [J]. , 2017, 23(第5期): 972-982.
[13]	. Data security model for industrial chain collaborative SaaS platform [J]. , 2016, 22(第12期): 2911-2919.
[14]	. Multi-source dynamic integration security for SaaS collaborative platform of industrial chain [J]. , 2015, 21(第3期): 813-821.
[15]	. Trust-aware partner selection modeling and simulation for virtual enterprise [J]. , 2015, 21(第2期): 528-536.